"Twitter malware and spam uses a pretty straightforward attack vector. You get a twitter message from an account (usually with an attractive female avatar) telling you that you’ll get something awesome if you click on the helpfully provided link. Most people don’t click, because they realize that if a hot chick sends you a link on twitter claiming you’ll win a free iPad, it’s probably not legit."
The author goes on to predict that twitter spam will get a lot more sophisticated and targeted, and it will get harder and harder for people to determine who to trust and who’s a bot (speaking of bots) and who’s not a bot:
"Twitter link spam will get a lot more context aware in 2012 and it’s going to be difficult to make an eyeball determination whether someone you don’t know has sent you a link because they follow you and they think you will be interested in a topic, or they are just trying to spam you"
As a matter of fact, we get a lot of tweets from scantily clad fembots that try to make us click malicious links, so we built an app to deal with that. It’s called Unfurlr, and you’re free to use it too, whenever the fembots come knocking –> http://unfurlr.com (bookmark it now, because they will come knocking)
And here’s a little more background info about Unfurlr.